Is your organization still using Secure Sockets Layer (SSL) or early Transport Layer Security (TLS) protocols? Do you work with online and e-commerce partners who haven’t yet migrated from SSL and early TLS to a secure form of encryption?
Because of its widespread use online, SSL and early TLS has been targeted by security attackers. Many serious vulnerabilities in SSL and early TLS (e.g. POODLE, BEAST, CRIME, Heartbleed) have been uncovered over the past several years, making it an unsafe method for protecting data.
February 1, 2018 marked the date that all new requirements introduced in PCI DSS version 3.2 must be adopted by organizations and included in their PCI DSS assessments. Effective June 30, 2018 - and in some cases sooner - all businesses must be using secure versions of TLS payment security protocol (TLS 1.2) and discontinue the use of both SSL and early TLS controls. When you stay compliant, you are part of the solution.
We are here to help you determine which Agilysys solutions are involved, and identify your specific deadline as well as the extent to which your business is affected. Upgrading to the required Agilysys software version prior to your TLS deadline will help safeguard payment transaction data.